$ rpki-client -vvf repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa File: 3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa (raw, json) Hash identifier: dNRLJIOUg55LdmvIjOpiHtEMfaCEomCiAm3dgCKB2xE= Subject key identifier: 6C:43:CF:68:9D:45:BF:27:BC:90:E6:A1:07:A0:12:50:80:7A:A7:96 Certificate issuer: /CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Certificate serial: 4A23505D921569E6476D4119DBA151255F3DBD3A Authority key identifier: 64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa Signing time: Mon 30 Mar 2026 10:02:26 +0000 ROA not before: Mon 30 Mar 2026 09:57:26 +0000 ROA not after: Mon 29 Mar 2027 10:02:26 +0000 asID: 141146 IP address blocks: 103.158.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:23:50:5d:92:15:69:e6:47:6d:41:19:db:a1:51:25:5f:3d:bd:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Validity Not Before: Mar 30 09:57:26 2026 GMT Not After : Mar 29 10:02:26 2027 GMT Subject: CN=6C43CF689D45BF27BC90E6A107A01250807AA796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:ac:31:2c:56:31:f4:b8:3e:3a:a9:b6:8c: f7:09:a1:15:36:a8:91:cf:2c:c7:18:fc:ae:49:65: ca:44:ad:f1:4e:6e:42:07:d0:a4:c1:47:be:1a:53: 34:47:70:9e:63:7f:16:09:c3:14:97:56:53:32:b2: da:bf:51:f5:3f:7b:27:f7:24:32:06:ae:fe:37:09: 9b:c9:a2:38:12:69:f5:9a:c3:22:7b:0e:83:9a:d2: 09:f6:f9:28:f5:bf:c2:4f:fa:af:48:88:5c:db:6f: 3c:d6:84:88:ac:74:d8:8a:a9:16:cf:4f:0d:0c:ed: b6:3b:57:51:ac:5e:39:35:80:e2:56:d6:1d:b1:38: fa:a6:17:1d:1e:8e:e7:71:dd:d7:fc:a7:10:10:ac: e9:e0:32:31:4c:a1:cd:70:2c:04:44:3a:4d:7b:5d: f2:8c:f8:3b:ad:50:c4:1a:62:94:9c:bb:2c:76:8a: e0:11:fd:9c:8c:e1:32:63:85:3e:ef:d9:6e:74:50: 62:6e:7c:d7:f1:41:40:3f:60:9c:48:90:0e:95:a3: 87:eb:44:1a:3a:83:95:ae:91:a9:d2:82:b3:ec:51: c1:5f:81:9d:0a:b5:d9:49:0e:15:d0:34:c3:0b:1c: 6c:0c:6d:f2:96:a6:b6:b1:84:5b:a2:e2:3a:cf:d6: 9c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:43:CF:68:9D:45:BF:27:BC:90:E6:A1:07:A0:12:50:80:7A:A7:96 X509v3 Authority Key Identifier: keyid:64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32332d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.208.0/23 Signature Algorithm: sha256WithRSAEncryption 57:1b:2d:6b:08:75:e2:c6:21:da:9b:02:f9:a1:2f:4b:40:f9: ab:61:1d:32:86:d8:79:5c:57:9a:04:9b:bc:79:06:06:e8:c6: 59:5e:a4:fe:b3:3c:07:80:30:08:b9:c6:29:0d:97:99:98:99: 73:28:6c:10:2f:5c:ef:d3:30:0f:4c:13:a6:5e:aa:e5:bf:23: bd:2c:b3:b0:e1:94:b3:cb:18:7f:ec:cf:0f:66:e2:9d:3a:44: 86:67:03:9a:b9:ad:4b:b1:36:eb:37:7b:76:4f:77:0a:5d:b4: 19:58:14:87:f1:d4:eb:11:5d:03:2c:aa:e9:11:46:f9:50:54: fd:f0:5c:f9:d0:b2:f0:3e:c4:b6:07:c8:4c:93:9c:02:a5:c9: f9:ae:23:1d:19:04:7f:cd:ef:6f:06:ee:2a:40:f0:ca:7e:cd: 87:45:09:ac:10:6e:b0:0b:e0:f0:1f:bf:85:36:5c:89:49:e6: 87:20:72:2a:61:ae:bc:c6:f3:a0:3c:7e:9e:f3:43:b9:9d:a8: fb:dc:76:e6:90:43:64:33:db:be:10:6d:a7:b8:a6:cf:75:20: da:15:3e:97:02:d1:01:c0:c6:ad:30:21:39:f7:bf:41:07:69: f7:d3:27:8e:15:1e:47:50:b2:b2:a3:a1:13:f8:1d:c4:e9:51: c8:e3:f5:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSiNQXZIVaeZHbUEZ26FRJV89vTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZF RUYxNURCNjAeFw0yNjAzMzAwOTU3MjZaFw0yNzAzMjkxMDAyMjZaMDMxMTAvBgNV BAMTKDZDNDNDRjY4OUQ0NUJGMjdCQzkwRTZBMTA3QTAxMjUwODA3QUE3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHk6wxLFYx9Lg+Oqm2jPcJoRU2 qJHPLMcY/K5JZcpErfFObkIH0KTBR74aUzRHcJ5jfxYJwxSXVlMystq/UfU/eyf3 JDIGrv43CZvJojgSafWawyJ7DoOa0gn2+Sj1v8JP+q9IiFzbbzzWhIisdNiKqRbP Tw0M7bY7V1GsXjk1gOJW1h2xOPqmFx0ejudx3df8pxAQrOngMjFMoc1wLAREOk17 XfKM+DutUMQaYpScuyx2iuAR/ZyM4TJjhT7v2W50UGJufNfxQUA/YJxIkA6Vo4fr RBo6g5WukanSgrPsUcFfgZ0KtdlJDhXQNMMLHGwMbfKWpraxhFui4jrP1pzlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbEPPaJ1Fvye8kOahB6ASUIB6p5YwHwYDVR0j BBgwFoAUZLRmUdewx1fkrt4BaR8GL+7xXbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTcwNTkyNy1lYzY0LTQ0ZjUtOWM5ZS1jOWE1NWE1MjNiNjQvMC82NEI0NjY1MUQ3 QjBDNzU3RTRBRURFMDE2OTFGMDYyRkVFRjE1REI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZFRUYx NURCNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnntAwDQYJ KoZIhvcNAQELBQADggEBAFcbLWsIdeLGIdqbAvmhL0tA+athHTKG2HlcV5oEm7x5 BgboxllepP6zPAeAMAi5xikNl5mYmXMobBAvXO/TMA9ME6ZequW/I70ss7DhlLPL GH/szw9m4p06RIZnA5q5rUuxNus3e3ZPdwpdtBlYFIfx1OsRXQMsqukRRvlQVP3w XPnQsvA+xLYHyEyTnAKlyfmuIx0ZBH/N728G7ipA8Mp+zYdFCawQbrAL4PAfv4U2 XIlJ5ocgciphrrzG86A8fp7zQ7mdqPvcduaQQ2Qz274Qbae4ps91INoVPpcC0QHA xq0wITn3v0EHaffTJ44VHkdQsrKjoRP4HcTpUcjj9Uw= -----END CERTIFICATE-----Generated at Sun Apr 19 11:40:03 2026 by rpki-client